Category: Amazon GuardDuty

Why preventive controls matter for FedRAMP 20x Organizations strengthen their security posture when Amazon Web Services (AWS) cloud resources consistently align with security and regulatory requirements. Preventive security controls, which are designed to minimize or avoid threat events, help enforce these requirements before misconfigurations are deployed. In this post, we show how service control policies […]

Learn how Amazon Web Services (AWS) operates inside a scoped compute environment with an AWS Identity and Access Management (IAM) execution role, network segmentation, and defense-in-depth security meeting FISMA, FedRAMP, and DoD CCSRG standards.

This post brings guidance on Customer Responsibility Matrices (CRMs), authorization boundary definitions, and multi-provider control ownership into a single actionable framework for defense contractors preparing for third-party assessment.

Ivanti’s 2025 State of Cybersecurity Report revealed that only one in three organizations feel prepared to protect themselves from software supply chain threats. According to Cowbell’s Cyber Roundup Report 2024, with respect to supply chain threats, operating systems pose the greatest immediate threat as “they form the foundational layer of an organization’s entire IT infrastructure.” […]

In this post, we demonstrate how to use the advanced malware detection features of Amazon GuardDuty to uncover malicious and suspicious files compromising your Amazon Elastic Compute Cloud (Amazon EC2) instances. We use the investigative capabilities of Amazon Detective to gain deeper insights into the security event. After the key questions about the security event are addressed, we outline steps to remediate the potentially compromised EC2 instance.

In this blog, we will guide you through the process of setting up a secure multi-account AWS environment using AWS Control Tower, AWS IAM Identity Center, AWS Organizations and will show you how to secure your environment using AWS Config, AWS Security Hub, and Amazon GuardDuty.

Nonprofit organizations face unique security challenges due to their resource constraints and prioritization of mission-focused initiatives. In this blog post, we discuss Amazon Web Services (AWS) security best practices to accelerate mission impact and demonstrate how upfront security investments can both improve security and save time on redundant processes in the long run.

Amazon Web Services (AWS) has been a trusted collaborator and advisor to GovTechs for years, providing the tools, expertise, and support they need to build and grow their solutions effectively. In this blog post, we discuss five key ways AWS supports GovTechs in their mission to serve government agencies and citizens.

Academic research IT departments around the world face the same challenge: how to balance their existing on-premises infrastructure with the opportunities of cloud computing. At the Supercomputing 2024 (SC24) conference, Amazon Web Services hosted a panel featuring two research IT leaders: Circe Tsui, associate director of solutions architecture at Emory University in the Office of Information Technology, and Dr. Robert Shen, director of the RMIT AWS Supercomputing Hub (RACE) at the Royal Melbourne Institute of Technology (RMIT). During the panel, Tsui and Shen shared how their institutions use AWS to augment and enhance their research operations with more scalability, security, and collaboration alongside their on-premises infrastructure. Read this post to learn more.

This post is part three of a four-part series that addresses how a Cloud Center of Excellence (CCoE) can be a viable solution to address the challenges of digital transformation. In this post, we address the three technical perspectives of the Amazon Web Services Cloud Adoption Framework (AWS CAF). While the business, organizational, and governance perspectives of the AWS CAF are crucial, the CCoE must also focus on the technical capabilities required to build and operate a cloud environment that meets the organization’s needs.